This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: pbv90pDZ26iQWi7+EkfYhRDgSfQS5MNoAGuB2Jlamfw= Subject key identifier: A1:B2:53:AB:82:6A:66:5D:1D:9B:17:05:A0:3A:70:3E:8E:3A:29:BC Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 080E Signing time: Sun 28 Dec 2025 20:53:59 +0000 Manifest this update: Sun 28 Dec 2025 20:53:58 +0000 Manifest next update: Sun 04 Jan 2026 20:53:58 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: 97NKRBVcJp9rGr6Gmh00yaslo8nAlXrMI/jsDF+2tok=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) 5: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 20:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Dec 28 20:53:58 2025 GMT Not After : Jan 4 20:53:58 2026 GMT Subject: CN=695198e7-94a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:93:69:6c:e2:14:bf:11:e3:b9:59:8f:c0:28: d2:1d:4a:49:7f:da:71:0a:fe:2b:8b:ca:1e:9f:fb: 6f:4d:95:95:c3:0e:a7:eb:77:f8:a5:a1:b2:9e:19: 7f:7f:d7:39:be:b4:c2:a6:5e:6b:52:6e:72:ee:31: 01:f9:1f:8b:aa:9d:fc:b6:cc:e7:b1:11:e7:81:7a: 75:30:49:74:23:71:34:98:12:07:cd:27:24:58:5f: 6a:36:ca:0b:50:66:50:94:f9:12:52:b3:7f:8b:6c: 02:5d:c8:6c:b8:7e:a8:40:a8:2f:3b:8f:7d:9e:ca: a3:d9:46:0e:3a:a2:0f:8c:15:21:4d:69:08:6a:83: a9:f0:39:f3:d4:2a:08:09:c1:02:97:8c:3a:d5:74: f2:54:b2:0a:e9:f4:b7:08:93:53:1d:44:b2:6e:c3: 04:2c:dd:f4:3c:44:b7:4b:b2:de:2d:83:79:11:49: c3:08:5e:ae:31:db:0b:a9:e7:c1:fc:e3:f0:c3:e2: 4b:7b:a7:b6:55:0d:7f:00:3f:41:07:da:5a:e1:97: c7:81:0d:88:75:ee:ea:0d:e1:3e:f0:49:73:7d:f5: da:e2:13:a8:96:6c:58:1f:ae:b9:f4:09:4d:73:8b: 35:5d:66:b9:56:e4:c3:85:6c:08:e7:a8:a6:02:ab: 39:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B2:53:AB:82:6A:66:5D:1D:9B:17:05:A0:3A:70:3E:8E:3A:29:BC X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:92:67:8b:1f:2f:f7:18:a0:61:90:73:23:5d:3c:bc:86:06: 62:0b:71:7d:3b:9b:4f:8e:a2:61:88:00:67:26:80:7a:6f:85: 89:87:4e:20:44:1d:49:dc:e7:17:bf:66:f9:78:0b:9a:51:31: 0b:f7:85:77:e0:11:cd:e6:3c:8d:69:68:c2:23:15:a6:a9:91: 62:e3:37:45:d1:ea:fd:da:39:98:e5:9b:9e:e1:52:5a:2c:a8: ac:07:41:0a:da:7f:e6:90:ad:57:35:00:78:d0:1d:e1:87:17: 99:cf:96:3e:95:9b:83:d2:a2:46:4c:df:30:65:ac:96:19:8b: af:b1:e4:f7:08:a0:ba:31:73:f2:7f:4a:48:c1:e7:26:93:88: e4:3f:ab:7e:af:b7:47:98:13:1d:9d:cd:88:e9:6e:5e:66:54: a7:b1:1d:44:74:ac:33:ee:3f:79:f5:2d:45:7f:d4:86:b2:75: cd:0b:7a:24:df:25:dc:f9:c9:3b:79:ba:5b:cc:e3:2f:a0:85: ea:e0:cc:a8:92:24:18:7e:9b:00:30:78:c2:f7:bf:0e:72:97: 5b:d9:72:a5:f1:8a:ee:ca:f9:f6:df:91:31:0d:15:d4:0f:d8: 7c:18:b1:4d:24:fe:7e:2c:f1:0f:a0:ac:03:b4:5b:53:f6:03: b6:33:d3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUxMjI4MjA1MzU4WhcNMjYwMTA0MjA1MzU4WjAYMRYwFAYD VQQDDA02OTUxOThlNy05NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJNpbOIUvxHjuVmPwCjSHUpJf9pxCv4ri8oen/tvTZWVww6n63f4paGynhl/ f9c5vrTCpl5rUm5y7jEB+R+Lqp38tsznsRHngXp1MEl0I3E0mBIHzSckWF9qNsoL UGZQlPkSUrN/i2wCXchsuH6oQKgvO499nsqj2UYOOqIPjBUhTWkIaoOp8Dnz1CoI CcECl4w61XTyVLIK6fS3CJNTHUSybsMELN30PES3S7LeLYN5EUnDCF6uMdsLqefB /OPww+JLe6e2VQ1/AD9BB9pa4ZfHgQ2Ide7qDeE+8ElzffXa4hOolmxYH6659AlN c4s1XWa5VuTDhWwI56imAqs50wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGyU6uC amZdHZsXBaA6cD6OOim8MB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDkmeLHy/3GKBhkHMjXTy8hgZiC3F9O5tPjqJhiABnJoB6b4WJh04g RB1J3OcXv2b5eAuaUTEL94V34BHN5jyNaWjCIxWmqZFi4zdF0er92jmY5Zue4VJa LKisB0EK2n/mkK1XNQB40B3hhxeZz5Y+lZuD0qJGTN8wZayWGYuvseT3CKC6MXPy f0pIwecmk4jkP6t+r7dHmBMdnc2I6W5eZlSnsR1EdKwz7j959S1Ff9SGsnXNC3ok 3yXc+ck7ebpbzOMvoIXq4MyokiQYfpsAMHjC978Ocpdb2XKl8Yruyvn235ExDRXU D9h8GLFNJP5+LPEPoKwDtFtT9gO2M9Pj -----END CERTIFICATE-----Generated at Mon Dec 29 02:38:31 2025 by rpki-client